Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer
 Support Center > Search Results > SecureKnowledge Details
Support Center
 Print    Email
How to use the opsec_pull_cert command

Solution ID: sk11520
Product: Other
Version: NG
Date Created: 30-Apr-2002
Last Modified: 07-Jan-2009
Rate this document
[1=Worst,5=Best]
Solution
The opsec_pull_cert command is used by OPSEC applications to pull the certification file from the Management Server to the OPSEC applications machine.
The OPSEC application object is first defined in the SmartDashboard, and a certificate for it is created on the Management Server when SIC is established between the Management and the OPSEC application. The certificate must then be pulled using the opsec_pull_cert command.

There are a few common parameters that must be used when doing this:

  • -h <host> This is the IP address or resolvable host name of the FireWall-1 Management Server that contains the certificate.


  • -n <name> This is the applications NAME that is defined when creating the application object in the Policy Editor under the 'OPSEC Applications Properties' Name: field.


  • -p <password> This is the one time password (Activation Key) that was defined when clicking 'Communications' in the 'OPSEC Applications Properties' window. The 'Communications' window asks for an 'Activation Key'.


  • -od <filename> This is a file that gets created which will contain the DN name of the application as defined in the Management Server. This is not a required flag unless the OPSEC application states it needs it.


  • -d This flag will turn on the debug output in case Support needs further analysis information.


For very detailed debug information, set the TDERROR_ALL_ALL environment variable from 0 through 5. This gives very verbose debug information while running opsec_pull_cert.

This solution is about products that are no longer supported and it will not be updated
Give us Feedback
Rate this document
[1=Worst,5=Best]
Additional comments...(Max 2000 characters allowed)
Characters left: 2000